diff options
Diffstat (limited to 'hosts/surtr/tls.nix')
| -rw-r--r-- | hosts/surtr/tls.nix | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/hosts/surtr/tls.nix b/hosts/surtr/tls.nix index cc868f45..9cd6bd0c 100644 --- a/hosts/surtr/tls.nix +++ b/hosts/surtr/tls.nix | |||
| @@ -4,6 +4,8 @@ let | |||
| 4 | 4 | ||
| 5 | knotDNSCredentials = zone: pkgs.writeText "lego-credentials" '' | 5 | knotDNSCredentials = zone: pkgs.writeText "lego-credentials" '' |
| 6 | EXEC_PATH=${knotDNSExec zone}/bin/update-dns.sh | 6 | EXEC_PATH=${knotDNSExec zone}/bin/update-dns.sh |
| 7 | EXEC_PROPAGATION_TIMEOUT=600 | ||
| 8 | EXEC_POLLING_INTERVAL=10 | ||
| 7 | ''; | 9 | ''; |
| 8 | knotDNSExec = zone: pkgs.writeScriptBin "update-dns.sh" '' | 10 | knotDNSExec = zone: pkgs.writeScriptBin "update-dns.sh" '' |
| 9 | #!${pkgs.zsh}/bin/zsh -xe | 11 | #!${pkgs.zsh}/bin/zsh -xe |
| @@ -49,7 +51,7 @@ in { | |||
| 49 | extraDomainNames = [ "*.rheperire.org" ]; | 51 | extraDomainNames = [ "*.rheperire.org" ]; |
| 50 | dnsProvider = "exec"; | 52 | dnsProvider = "exec"; |
| 51 | credentialsFile = knotDNSCredentials "rheperire.org"; | 53 | credentialsFile = knotDNSCredentials "rheperire.org"; |
| 52 | dnsPropagationCheck = false; | 54 | dnsResolver = "1.1.1.1:53"; |
| 53 | }; | 55 | }; |
| 54 | }; | 56 | }; |
| 55 | }; | 57 | }; |